BeaconCMS / beacon

Open-source content management system (CMS) built with Phoenix LiveView. Faster render times to boost SEO performance, even for the most content-heavy pages.
https://beaconcms.org
MIT License
1.04k stars 101 forks source link

Bump the production-dependencies group across 1 directory with 5 updates #584

Closed dependabot[bot] closed 2 months ago

dependabot[bot] commented 2 months ago

Bumps the production-dependencies group with 4 updates in the / directory: ecto_sql, ex_aws, ex_aws_s3 and image.

Updates ecto_sql from 3.11.3 to 3.12.0

Changelog

Sourced from ecto_sql's changelog.

v3.12.0 (2024-08-12)

Enhancements

  • [Ecto.Migration] Add Ecto.Migration.remove_if_exists/1
  • [Ecto.Migrator] Warn for migration files that end in .ex
  • [sql] Support for subqueries in order_bys and group_bys
  • [mysql] Add check constraints for MySQL
  • [postgres] Add native bitstring support to Postgres
  • [postgres] Add support for :duration type
  • [postgres] Add :plan explain option for Postgres
  • [tds] Allow passing %Tds.Parameter structs as params for named parameter usage in query

Bug fix

  • [mysql] Type cast of integers in MySQL should use signed integers
Commits


Updates ex_aws from 2.4.4 to 2.5.4

Changelog

Sourced from ex_aws's changelog.

v2.5.4 (2024-06-04)

  • Endpoint and region updates
  • Add support for Elixir 1.16
  • Drop support for Elixir 1.11
  • Add support for sso_session in .aws/config
  • Add support for EventBridge Pipes service
  • Add support for Pinpoint Mobiletargeting service
  • Add docs for running DynamoDB locally
  • Allow iodata body in s3 requests

v2.5.3 (2024-03-20)

  • Add mappings for Chime

v2.5.2 (2024-03-19)

  • Endpoint updates

v2.5.1 (2024-01-11)

  • Endpoint updates
  • Documentation updates
  • Fix request error handling when error type is a proplist
  • Fixes to ensure Req and Finch clients return the same success fields as hackney
  • Add basic support for Personalise service
  • Add basic support for Bedrock service

v2.5.0

  • [Breaking] Bump minimum elixir version to 1.11
  • Replace retired HTTPotion with Req as default web client
  • Endpoint updates
Commits
  • 8020fa1 Whoops, should have been 2.5.4
  • 7e9f8c1 Bump verison and update changelog (v2.5.3)
  • 66c5c36 Merge pull request #1055 from ruslandoga/upgrade-elixir-erlang
  • 27948a9 Move lint check to latest version
  • 8f08678 Merge pull request #1048 from rjenkins2/patch-1
  • 1eb6bac Merge pull request #1056 from salemove/eventbridge-pipes-support
  • 72461a7 Merge pull request #1060 from ex-aws/dependabot/hex/ex_doc-0.34.0
  • efa170e Bump ex_doc from 0.30.9 to 0.34.0
  • ec3ce51 Merge commit 'd8d1fe0'
  • d8d1fe0 Drop support for Elixir 1.11
  • Additional commits viewable in compare view


Updates ex_aws_s3 from 2.4.0 to 2.5.3

Changelog

Sourced from ex_aws_s3's changelog.

v2.5.3 (2024-01-11)

  • Add option to get auth from AuthCache on every request when uploading to S3 in a stream
  • Fix dialyzer warnings with Elixir 1.16
  • Allow hash types other than MD5 when generating body hash
  • Fix error handling for parse_upload_part_copy

v2.5.2 (2023-10-16)

  • Properly fix typespec for presigned_url/5, and include support for Elixir datetime types.

v2.5.1 (2023-10-12)

  • Fix typespec for presigned_url/5

v2.5.0 (2023-10-04)

  • Increase minimum Elixir version to 1.11
  • Add tests for Elixir 1.15
  • Merge fix for multipart copy (sort of BREAKING: this changes the signature of upload_part_copy, however that function could never have worked properly previously so I have to assume that nobody was actually using it).
  • Add support for optional start_datetime opt on presigned_url/5
  • Allow 0 day triggers for lifecycle rules
  • Return the full error on download failure rather than the generic "error downloading file" string
Commits


Updates image from 0.53.0 to 0.54.2

Release notes

Sourced from image's releases.

Image version 0.54.2

Bug Fixes

  • Return the updated t:Plug.Conn.t/0 when calling Image.write/2 with the destination being a plug. Thanks to @​lostkobrakai for the issue. Closes #159.

  • Fixes Image.Application to use Image.bumblebee_configured?/0. Thanks to @​mat-hek for the PR. Closes #160.

  • Fix the spec for Image.Video.with_video/2. Thanks to @​nikitosing for the report. Closes #162.

Image version 0.54.1

Bug Fixes

  • Adjust Image.Math.-/1 (unary minus) syntax to be compatible on more elixir versions. Should be ok back to Elixir 1.12 depending on vix version support requirement on OTP.
Changelog

Sourced from image's changelog.

Image 0.54.2

This is the changelog for Image version 0.54.2 released on September 1st, 2024. For older changelogs please consult the release tag on GitHub

Bug Fixes

  • Return the updated t:Plug.Conn.t/0 when calling Image.write/2 with the destination being a plug. Thanks to @​lostkobrakai for the issue. Closes #159.

  • Fixes Image.Application to use Image.bumblebee_configured?/0. Thanks to @​mat-hek for the PR. Closes #160.

  • Fix the spec for Image.Video.with_video/2. Thanks to @​nikitosing for the report. Closes #162.

Image 0.54.1

This is the changelog for Image version 0.54.1 released on August 20th, 2024. For older changelogs please consult the release tag on GitHub

Bug Fixes

  • Adjust Image.Math.-/1 (unary minus) syntax to be compatible on more elixir versions. Should be ok back to Elixir 1.12 depending on vix version support requirement on OTP.

Image 0.54.0

This is the changelog for Image version 0.54.0 released on August 18th, 2024. For older changelogs please consult the release tag on GitHub

Bug Fixes

  • Fix typespecs in Image.Draw, improve tests and clarify docs. In particular, document that the function passed to Image.mutate/2 must return either :ok or {:ok, term}.

  • Fix Image.get_pixel/3 to ensure only integer values are returned when the image band format is integer. This is required because the underlying Vix.Vips.Operation.getpoint/3 always returns floats.

  • Fix using Image.open/2 with binary HEIC files. HEIC magic numbers are now used to identify if a binary is an HEIC image (as is already done for other image types).

  • Return an error if opening a video stream returns a Evision.VideoCapture.t struct but the isOpened field is false.

Enhancements

  • Adds Image.vibrance/3 and Image.vibrance!/3 following the libvips discussion.

  • Add documentation to Image.Video.open/2 illustrating how to open RTSP video streams.

Commits


Updates postgrex from 0.18.0 to 0.19.1

Changelog

Sourced from postgrex's changelog.

v0.19.1 (2024-08-13)

  • Enhancements

    • Allow encoding/decoding of LSN
  • Bug fixes

    • Fix Dialyzer warnings on interval extension
    • Log error message if Postgrex.ReplicationConnection is reconnecting

v0.19.0 (2024-08-03)

  • Enhancements

    • Respect precision for interval, time, timestamp, and timestamptz
    • Remove restriction on year 9999 on datetime columns
    • Support decoding and encoding Elixir's v1.17 Duration as interval
    • Allow starting one stream after the other in replication
  • Bug fixes

    • Return {:stop, state} from gen_statem connection callback
Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
leandrocp commented 2 months ago

@dependabot ignore ex_aws major version

dependabot[bot] commented 2 months ago

OK, I won't notify you about version 2.x.x of ex_aws again, unless you unignore it.

dependabot[bot] commented 2 months ago

Looks like these dependencies are updatable in another way, so this is no longer needed.